firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 05:49:13 GMT
Expires: Wed, 12 Oct 2022 06:31:10 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Es6X3Ml9iQvd6diY59ZspcXAj3hJU6Mjr-PG3trkp6AwbSyiSq68Gw==
Age: 2351
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17836
Expires: Wed, 12 Oct 2022 11:25:40 GMT
Date: Wed, 12 Oct 2022 06:28:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf115053c2c98937c2d3c1bba367d815
dfcf225bde5123f0476e6b319823136fa77537f6
e5748cb4844096548cf4c2d8d5bee9e245035c4632ae1a59bfd3b2d99bd4cd9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5748CB4844096548CF4C2D8D5BEE9E245035C4632AE1A59BFD3B2D99BD4CD9B"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13031
Expires: Wed, 12 Oct 2022 10:05:35 GMT
Date: Wed, 12 Oct 2022 06:28:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LWj5VgBgkIsnYN3cMQMs3Ge+AziD3Ld515xDnktEfjdY0KREmSFGHGZb0yP5pg5kNl+Hwui1WpWwaXBC1c2zTQ==
x-amz-request-id: 2HF9PZNBFSETB2SW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 06:01:10 GMT
age: 1634
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 06:28:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 12 Oct 2022 05:29:41 GMT
Expires: Wed, 12 Oct 2022 05:44:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YhjO-8RM3Z69jZ3GSotMNYMuvS0-pjknscnKRJobC2ZRrfolp-8Pdw==
Age: 3523
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 34c15fee665f03aab24038618bb2d9a7
6b90ea5a496581b83daf1764938d1db1a5a32bb4
93e99055eb4a94f808eed2fac338d6c480047c30a56498b2a65036a7d5bdea04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6445
Cache-Control: max-age=98749
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:25 GMT
Etag: "6345241a-1d7"
Expires: Thu, 13 Oct 2022 09:54:14 GMT
Last-Modified: Tue, 11 Oct 2022 08:06:50 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.159.206101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.159.206:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5IH9ML8DoL/mAaMf8cF60w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f8M3pOrR9A1I8ZBdffFoVCzwSsU=
www.locksmithofbrooklyn.com/oma/imoladaumqi
143.95.229.28301 Moved Permanently 0 B URL HTTP/1.1 www.locksmithofbrooklyn.com/oma/imoladaumqi
IP 143.95.229.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /oma/imoladaumqi HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 12 Oct 2022 06:28:24 GMT
Server: Apache
Expires: Wed, 12 Oct 2022 07:28:25 GMT
Cache-Control: max-age=3600
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Content-Length: 0
Keep-Alive: timeout=15, max=768
Content-Type: text/html; charset=UTF-8
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 78bbfb8d31adf549a751d6ca7bb7e9a3
d617ee8ca81f07150ad1488deae3ee377c609e4b
8aec16fd000be27676216883ec29d7b6bbaf8fe1c1058b3b1eff3b020354190e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 06:28:26 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 04:01:05 GMT
Expires: Wed, 19 Oct 2022 04:01:04 GMT
Etag: "d617ee8ca81f07150ad1488deae3ee377c609e4b"
Cache-Control: max-age=595357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 758dc67fb8410b39-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18002
Expires: Wed, 12 Oct 2022 11:28:28 GMT
Date: Wed, 12 Oct 2022 06:28:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18002
Expires: Wed, 12 Oct 2022 11:28:28 GMT
Date: Wed, 12 Oct 2022 06:28:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18002
Expires: Wed, 12 Oct 2022 11:28:28 GMT
Date: Wed, 12 Oct 2022 06:28:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18002
Expires: Wed, 12 Oct 2022 11:28:28 GMT
Date: Wed, 12 Oct 2022 06:28:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc98481e7-1f61-48e4-8e05-5009fce5b69d.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc98481e7-1f61-48e4-8e05-5009fce5b69d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7bead07a2590fff268ef4255d80d8d1
e2627bb62009578f70858bd36d81ef14d5ca60da
a6b1e19983dc45746b4f690dddb2a4f7389a58dd6ec6747683521f7e0116c540
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc98481e7-1f61-48e4-8e05-5009fce5b69d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7469
x-amzn-requestid: 98cdc670-9e72-444d-a18c-0cf3cf4ab44a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BPMGo5IAMF41A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e261-322a240c1b02b1b558d6a5e1;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mwuP1TlsLPajvqrjBj_dlEDrG_ZIlTlcerI2Yi7v846jk3gfFeMk8w==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:56:50 GMT
etag: "e2627bb62009578f70858bd36d81ef14d5ca60da"
content-type: image/jpeg
age: 30696
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94addbde-5c50-4a41-a905-89ef02be4410.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94addbde-5c50-4a41-a905-89ef02be4410.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 80fc91ecf8ab394f2b0c7cf5de435c1b
1ba810e7feb40b1523e6e692b6c0ed4fbc2bca8e
82b48f3a7e07bcc8a727afc36a9f44274dbce8b8f89f7a22e77618c71995dddb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94addbde-5c50-4a41-a905-89ef02be4410.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11474
x-amzn-requestid: 43958738-6159-47cb-8c97-451301e77afc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BRlG3woAMF8gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e270-5c143b082383afe01eac3f35;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:38:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ltHro2hiQnKbToA8QohK6dmpxNXEcD8bcxlHYo2Jv_mlyPFQclvMDA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:56:43 GMT
etag: "1ba810e7feb40b1523e6e692b6c0ed4fbc2bca8e"
content-type: image/jpeg
age: 30703
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b431a08-bb4f-4df5-b399-0d77b5646525.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b431a08-bb4f-4df5-b399-0d77b5646525.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0361f8acaa51f3e1f5e15ffdefea92d
4a03be9ebd9281a3227aa0188964a4139224a694
e34c2253ad384128b944b2fd25d929c46e99f770029ccbb4a31370e8e17f3cd3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b431a08-bb4f-4df5-b399-0d77b5646525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6437
x-amzn-requestid: 2dd00d9c-fe40-4c20-bda1-13b2e5bfab94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaCFVHoAMFYPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-3385d2da0adff3ec5886f4b3;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: efHhXFWiL9_34aoTArAs5j78zL0nXYPPnhruAF7OdXApRbaGnayp2w==
via: 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:28:29 GMT
age: 7197
etag: "4a03be9ebd9281a3227aa0188964a4139224a694"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZKsi1hYgZdJQNWpphaMVLfpg69dC93J575Y2RsOzFV3ZzBb6x-nrew==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:22:17 GMT
age: 29169
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f78379e6bde371b492c950402bcc39e
53a7502d8932c515aa09055c5cf8f2d2242e4398
241016bbd3cebc009f63dff2773c1c7fdb68fa941ab62b368d5e023b9155fa37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5252
x-amzn-requestid: b4ef9c4f-7ca4-42c9-a928-b0b8aa3cc695
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BUaEtBoAMF8Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e282-455619be605fa91977c66df7;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:39:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zg4cBw3GML5OoCmS3yOEMdwKHFgl4fulcLN0Eqp4ttYBPj3umRY9lg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:34:25 GMT
age: 28441
etag: "53a7502d8932c515aa09055c5cf8f2d2242e4398"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa580f19-9ce4-4ea0-91f9-d7fcb6a24f43.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa580f19-9ce4-4ea0-91f9-d7fcb6a24f43.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94619859b98c7a9e8a24d9a74f192ffb
4ace684ada303aa2a23dec9ed51e90b3921e0d15
07ff41158f55dd10de3acdb386461abae3025d4e2c6db1573a40817c46870e57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faa580f19-9ce4-4ea0-91f9-d7fcb6a24f43.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12689
x-amzn-requestid: c0793638-91d1-4f65-97d0-cf07714db2a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BPwFUXoAMFvOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e264-7c141681367cfc2a2794846b;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nCO64aCUSxSg_UsAxS1IUSpT4yhNmRCvnrs_sBEYenFy3yWk2U60nA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:50:11 GMT
age: 31095
etag: "4ace684ada303aa2a23dec9ed51e90b3921e0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-LSD99WEG1N
142.250.74.168200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LSD99WEG1N
IP 142.250.74.168:0
File type ASCII text, with very long lines (18991)
Hash 30167d611bd5638f1324561c01c33e95
df35f839adae313dbfe76123baf8b667ced80b6a
d325b78a250abbaaee31049d46c960385ef57b4e69bdf876323814bfba70bc1c
GET /gtag/js?id=G-LSD99WEG1N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 12 Oct 2022 06:28:27 GMT
expires: Wed, 12 Oct 2022 06:28:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74821
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.3.3
143.95.229.28200 OK 597 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.3.3
IP 143.95.229.28:0
File type ASCII text, with very long lines (2181)
Hash 09bd8aac7c46469177cbfa78ce6b0318
abde02df06c7f2f5f2d5d289d5bba81ca6a4b4fe
643532e0f6cf14b01789041a0b844618252910cbe0d33a744196f5cb396040d1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/kk-star-ratings/src/core/public/css/kk-star-ratings.min.css?ver=5.3.3 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:55:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 597
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b45d7f40a93a062e11d3152f4c8cc386
118b3c9ba2d1939c87d45bc232b6833eb2190623
85f94ae27cef37d4aa23385459ae771386e0d4f2f794ccbf43174de141601b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec8c3be288c030a2f21f77da38609a2c
5dce231ac91002054bbdbc6b19f6d1aa0d6c32bc
fa3abfefbd26a9339066ee03360614fc68312aefd2aa7e47e291589f426a7265
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash befa75dbbe9d5dfa501f9c1f03b7cdfa
73814c47bdcd6bebffc963b71d0a20fb361fad50
76b8f843416709a64e030343fbea3e04b9ee9faf2872ddba29f7c8ea28041e28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6LfMl5wcAAAAAGSZPs5Z34ygh4KyRuXDPt5MimIU&ver=3.0
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfMl5wcAAAAAGSZPs5Z34ygh4KyRuXDPt5MimIU&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash cc57b867e970b38e2dfe8a47e07fe755
2ce2155b5568f74012dba7817cce12c04131242b
8a2d3730cf2219201290516c96ef0aa706eae9dcae43d4b9782ff3f136ee9cc5
GET /recaptcha/api.js?render=6LfMl5wcAAAAAGSZPs5Z34ygh4KyRuXDPt5MimIU&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 12 Oct 2022 06:28:27 GMT
date: Wed, 12 Oct 2022 06:28:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/fonts/fontawesome/font-awesome.css?ver=3.7.4
143.95.229.28200 OK 5.4 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/fonts/fontawesome/font-awesome.css?ver=3.7.4
IP 143.95.229.28:0
File type troff or preprocessor input, ASCII text
Hash 51a6c6bfd14238fa260c6684b70cf601
810fe573203c83fb556fc145bdd34468d867f851
9d5cf7b9fd2d6f7d96c0d6af3918cdf22302dabedcc90b26716be0c2d2c69c9a
GET /wp-content/themes/Avada/fonts/fontawesome/font-awesome.css?ver=3.7.4 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 24 Jan 2015 04:38:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5383
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.8
143.95.229.28200 OK 18 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.8
IP 143.95.229.28:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash d0aaa3187593df4d2a2f7ad4f5456916
b79e25f23f1fc89fe33ec285208b1a6962d06b13
d39fc27b7fd5c44552b6dc75c6ae95142ae94a9fcd8b1ed3c383e8d093ecf793
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.8 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Apr 2021 06:54:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17502
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/css/animations.css?ver=3.7.4
143.95.229.28200 OK 2.9 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/css/animations.css?ver=3.7.4
IP 143.95.229.28:0
File type ASCII text, with very long lines (305)
Hash 997f9fc11426e5fc1d0f290ad40e677c
3613f58fe153293b333e5344516086b84a565fa9
f49fd67c50c0855001d64c0fb8681b84fec9fe31bd7dd1a116c536e18f382efa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/css/animations.css?ver=3.7.4 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 24 Jan 2015 04:38:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2944
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/css/ipad.css?ver=3.7.4
143.95.229.28200 OK 5.8 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/css/ipad.css?ver=3.7.4
IP 143.95.229.28:0
File type ASCII text, with very long lines (324)
Hash 09cc437e2b79dc4aab5a19158d5aebce
8b2df70898ee011ec3a81113477b55bb8998979a
dc5889943eddd5ecdf0e2008acd5c179b54289530218a6c7d8424be420057812
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/css/ipad.css?ver=3.7.4 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 24 Jan 2015 04:38:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5779
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/css/media.css?ver=3.7.4
143.95.229.28200 OK 11 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/css/media.css?ver=3.7.4
IP 143.95.229.28:0
File type ASCII text, with very long lines (324)
Hash 286e8a49ba9bc0891699ecc473c0ffbd
e17912f112d4d10485a5a0e02426244416550bd7
23d767172fddcaba678d8883912ccaf8c1d70572f5085de8698ecc5d5c4e742f
GET /wp-content/themes/Avada/css/media.css?ver=3.7.4 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 24 Jan 2015 04:38:54 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 11054
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b45d7f40a93a062e11d3152f4c8cc386
118b3c9ba2d1939c87d45bc232b6833eb2190623
85f94ae27cef37d4aa23385459ae771386e0d4f2f794ccbf43174de141601b9b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b8e058c50dbe0871b6ccde4ed4cc8785
06b0c34d584624df99282c1fff1d766b9ed00e64
3319073b74402c41450cc9ca2162140dbe8b231db146cf8e77cb0b43fa461b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.locksmithofbrooklyn.com/wp-includes/css/dist/block-library/style.min.css?ver=b6aab4b6d05457612065e9db37df5d56
143.95.229.28200 OK 17 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-includes/css/dist/block-library/style.min.css?ver=b6aab4b6d05457612065e9db37df5d56
IP 143.95.229.28:0
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=b6aab4b6d05457612065e9db37df5d56 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:43:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 16594
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
143.95.229.28409 Conflict 83 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 143.95.229.28:0
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/uploads/2021/07/logo.png
143.95.229.28200 OK 2.6 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/uploads/2021/07/logo.png
IP 143.95.229.28:0
File type PNG image data, 231 x 77, 8-bit colormap, non-interlaced\012- data
Hash 44356ab34dc6a84d98b0aaa0017bb694
c174f95eebbf9412de6da85df427dfbd139eac02
3e9dd4953c4419e270e37236851665726c40238c6d7e8d1c66b03ab65c0eb579
GET /wp-content/uploads/2021/07/logo.png HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Jul 2021 10:49:42 GMT
accept-ranges: bytes
content-length: 2635
content-type: image/png
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/uploads/2015/06/brooklyns-locksmith.png
143.95.229.28200 OK 139 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/uploads/2015/06/brooklyns-locksmith.png
IP 143.95.229.28:0
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash a96e0bbf630a7a113fd0e1305ba382fe
068d1c8c7013bbc920d6d4def48ebfc532c7f67b
86b9ef82b1e75aa9ed62331d80b861f3170a98309467c9945f59d78707c4206c
GET /wp-content/uploads/2015/06/brooklyns-locksmith.png HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 18 May 2018 12:01:38 GMT
accept-ranges: bytes
content-length: 139
content-type: image/png
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
143.95.229.28200 OK 2.7 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 143.95.229.28:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 45bd1d6f7fc3a4069fc6fd400b90c961
903c7e28c7141e9fc1bdb4dfc62d043a97a01e2d
c638a0057b4be0a61cfb65b1860a855a327397e9871f5dde28fa2f138fb394dc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:43:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2675
content-type: application/javascript
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
143.95.229.28200 OK 4.6 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 143.95.229.28:0
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:43:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4618
content-type: application/javascript
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-includes/js/wp-emoji-release.min.js?ver=b6aab4b6d05457612065e9db37df5d56
143.95.229.28200 OK 5.3 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-includes/js/wp-emoji-release.min.js?ver=b6aab4b6d05457612065e9db37df5d56
IP 143.95.229.28:0
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=b6aab4b6d05457612065e9db37df5d56 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:43:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5321
content-type: application/javascript
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
143.95.229.28200 OK 8.3 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 143.95.229.28:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash e49f0561a452c9d04fb7d1510a23cc8c
9e8fc2e3129da4fe2790eee565a6478b864bea83
ab4f9f418b022ab34d617ee2f95d70afff005ed4d4d92e313ce84a56b40bce75
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:43:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8254
content-type: application/javascript
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/plugins/jquery-vertical-accordion-menu/skin.php?widget_id=2&skin=black
143.95.229.28200 OK 351 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/plugins/jquery-vertical-accordion-menu/skin.php?widget_id=2&skin=black
IP 143.95.229.28:0
File type ASCII text, with CRLF line terminators
Hash b03f44e77e406d52f693a19e5193d673
537e2cbe7def0ad5e938303b73d4b36ca9b1b900
c15c3162b6f6d278810ec8985579ebdc917c51070ac9e1bc5d0fbba006f7e8d2
GET /wp-content/plugins/jquery-vertical-accordion-menu/skin.php?widget_id=2&skin=black HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 351
content-type: text/css;charset=UTF-8
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Antic+Slab:400,400italic,700,700italic:latin,greek-ext,cyrillic,latin-ext,greek,cyrillic-ext,vietnamese
142.250.74.10200 OK 745 B URL HTTP/2 fonts.googleapis.com/css?family=Antic+Slab:400,400italic,700,700italic:latin,greek-ext,cyrillic,latin-ext,greek,cyrillic-ext,vietnamese
IP 142.250.74.10:0
Hash 9cb99f4adfb59de2f415180d9a1c9433
acd20db432c5babaecc7753b0dc37dc10ff9e13a
37e53f50a400db66d6c1c4ca9aedc0065c64b60281e0538277eb2c4de484e57c
GET /css?family=Antic+Slab:400,400italic,700,700italic:latin,greek-ext,cyrillic,latin-ext,greek,cyrillic-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 12 Oct 2022 06:28:27 GMT
date: Wed, 12 Oct 2022 06:28:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/anticslab/v16/bWt97fPFfRzkCa9Jlp6IacVcXA.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/anticslab/v16/bWt97fPFfRzkCa9Jlp6IacVcXA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Hash cae549261ca235f6a254f6eed560ba20
ee867ac8b467c51d0455ab3438e04fbee79c2d87
3c478d59cd9c14ded18169933a9703a61220b737631fa08035f626f45867c134
GET /s/anticslab/v16/bWt97fPFfRzkCa9Jlp6IacVcXA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.locksmithofbrooklyn.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 22:43:44 GMT
expires: Wed, 11 Oct 2023 22:43:44 GMT
cache-control: public, max-age=31536000
age: 27884
last-modified: Tue, 19 Apr 2022 18:27:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80441eff42b20b9def8e35c2e40efd3
f9fe84a9e292cb463f176040150eafbb68dd2e02
89bb831922fbb4b3675d0a7b109880111057574202841db3c6db5b6bdeab39b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/maps-api-v3/embed/js/50/8/init_embed.js
142.250.74.163200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/50/8/init_embed.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2669)
Hash 138be41e120e3cc80ab8eb02a2607f96
6fd6da61dbb2ff9d894ba9bcd1c5b3b3ccf36f71
f13fe4c3fd6b55f59ccf0ce2a234043203e9ebdf92c097ba81dff2fb3d4c1393
GET /maps-api-v3/embed/js/50/8/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 68697
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 16:37:59 GMT
expires: Thu, 05 Oct 2023 16:37:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Oct 2022 19:56:10 GMT
content-type: text/javascript
age: 568229
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
locksmithofbrooklyn.com/wp-content/uploads/2014/06/bkgd_bw2.jpg
143.95.229.28200 OK 12 kB URL HTTP/2 locksmithofbrooklyn.com/wp-content/uploads/2014/06/bkgd_bw2.jpg
IP 143.95.229.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x219, components 3\012- data
Hash 203bf5a969552502d4996e87728dfa27
70ba0160f3d9922a66bb9819342f0511622c7ef6
1a754cfa41bc214f8ca19daefc468620fdb1dc9f47603d8e2be732af64f6871a
GET /wp-content/uploads/2014/06/bkgd_bw2.jpg HTTP/1.1
Host: locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Cookie: _ga_LSD99WEG1N=GS1.1.1665556108.1.0.1665556108.0.0.0; _ga=GA1.1.237446256.1665556108
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 04 Jun 2015 13:46:45 GMT
accept-ranges: bytes
content-length: 12029
content-type: image/jpeg
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/fonts/icomoon/icomoon.woff
143.95.229.28200 OK 11 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/fonts/icomoon/icomoon.woff
IP 143.95.229.28:0
File type Web Open Font Format, CFF, length 11268, version 0.0\012- data
Hash f3e800fb87ad555b2ffce1e42f745b4e
41531981a3ef7e9e809b8945be2a9b393a31bb53
63382b3b60dd8ca38856e786b4049b84a4a6fb8647764eed7e37df7bf9ccc0fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/fonts/icomoon/icomoon.woff HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/wp-content/themes/Avada/style.css?ver=3.7.4
Cookie: _ga_LSD99WEG1N=GS1.1.1665556108.1.0.1665556108.0.0.0; _ga=GA1.1.237446256.1665556108
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 24 Jan 2015 04:38:54 GMT
accept-ranges: bytes
content-length: 11268
content-type: font/woff
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-LSD99WEG1N>m=2oeaa0&_p=12271478&cid=237446256.1665556108&ul=en-us&sr=1280x1024&_s=1&sid=1665556108&sct=1&seg=0&dl=https%3A%2F%2Fwww.locksmithofbrooklyn.com%2Foma%2Fimoladaumqi&dt=Page%20not%20found%20-&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-LSD99WEG1N>m=2oeaa0&_p=12271478&cid=237446256.1665556108&ul=en-us&sr=1280x1024&_s=1&sid=1665556108&sct=1&seg=0&dl=https%3A%2F%2Fwww.locksmithofbrooklyn.com%2Foma%2Fimoladaumqi&dt=Page%20not%20found%20-&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LSD99WEG1N>m=2oeaa0&_p=12271478&cid=237446256.1665556108&ul=en-us&sr=1280x1024&_s=1&sid=1665556108&sct=1&seg=0&dl=https%3A%2F%2Fwww.locksmithofbrooklyn.com%2Foma%2Fimoladaumqi&dt=Page%20not%20found%20-&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.locksmithofbrooklyn.com
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.locksmithofbrooklyn.com
date: Wed, 12 Oct 2022 06:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 557661
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 12 Oct 2022 04:41:09 GMT
expires: Wed, 12 Oct 2022 06:41:09 GMT
cache-control: public, max-age=7200
age: 6440
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b8e058c50dbe0871b6ccde4ed4cc8785
06b0c34d584624df99282c1fff1d766b9ed00e64
3319073b74402c41450cc9ca2162140dbe8b231db146cf8e77cb0b43fa461b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 06:28:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.hotjar.com/c/hotjar-295954.js?sv=5
54.230.111.66200 OK 258 B URL HTTP/2 static.hotjar.com/c/hotjar-295954.js?sv=5
IP 54.230.111.66:0
File type gzip compressed data, max compression\012- data
Hash d2f944aac738db63d5417c464b85f1e6
fac0cd07fb24a363fdf096cc6e6479de4e997675
20a3beccf2e94d82042de5a827a4218e884524c7cb2cf71edfc15bcf4ea3f80f
GET /c/hotjar-295954.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 12 Oct 2022 06:28:29 GMT
cache-control: max-age=60
etag: W/d41d8cd98f00b204e9800998ecf8427e
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OWqUvW5LlpE5sp2UkIYsgT21YnjLFFXKKxGEUAVErx1kUyHkNQnb-Q==
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/js/jquery.prettyPhoto-min.js?ver=3.7.4
143.95.229.28404 Not Found 196 kB URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/js/jquery.prettyPhoto-min.js?ver=3.7.4
IP 143.95.229.28:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18079), with CRLF, LF line terminators
Size 196 kB (196134 bytes)
Hash b1b1e8bf6545d1a761242b2582d25942
6eaddfec66b856d6aa70001592eb58eb23687396
346b883bddf7bd3e81947ce67a937a05a0fdd6cd3acb64640600857816bd9b46
GET /wp-content/themes/Avada/js/jquery.prettyPhoto-min.js?ver=3.7.4 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.locksmithofbrooklyn.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=12271478&t=pageview&_s=1&dl=https%3A%2F%2Fwww.locksmithofbrooklyn.com%2Foma%2Fimoladaumqi&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=328489597&gjid=977692776&cid=237446256.1665556108&tid=UA-74095159-1&_gid=1706442601.1665556110&_r=1&_slc=1&z=118580235
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=12271478&t=pageview&_s=1&dl=https%3A%2F%2Fwww.locksmithofbrooklyn.com%2Foma%2Fimoladaumqi&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=328489597&gjid=977692776&cid=237446256.1665556108&tid=UA-74095159-1&_gid=1706442601.1665556110&_r=1&_slc=1&z=118580235
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=12271478&t=pageview&_s=1&dl=https%3A%2F%2Fwww.locksmithofbrooklyn.com%2Foma%2Fimoladaumqi&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IADAAEABAAAAACAAI~&jid=328489597&gjid=977692776&cid=237446256.1665556108&tid=UA-74095159-1&_gid=1706442601.1665556110&_r=1&_slc=1&z=118580235 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.locksmithofbrooklyn.com
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.locksmithofbrooklyn.com
date: Wed, 12 Oct 2022 06:28:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/7a062b77/www-widgetapi.vflset/www-widgetapi.js
172.217.21.174200 OK 53 kB URL HTTP/2 www.youtube.com/s/player/7a062b77/www-widgetapi.vflset/www-widgetapi.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (817)
Hash daef6ba4643d9dfd71477cb8630e1dd1
edd5c9544d7791b7e1e7ea6bbb92dc340e0a05db
f3be6ef78a8809b9b193ca76d3af20129d0ac460ce22d78ffe1f2ef28f2044b2
GET /s/player/7a062b77/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 52763
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 03:41:29 GMT
expires: Thu, 12 Oct 2023 03:41:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Oct 2022 00:17:35 GMT
content-type: text/javascript
age: 10020
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/uploads/2021/07/favicon.png
143.95.229.28200 OK 526 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/uploads/2021/07/favicon.png
IP 143.95.229.28:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 6fec6365c4378338e349bbd7ed5e01dd
ecff63cf83b954b87368cf122ea9074b8fa986ea
084d71ebffba2e003f9b6a8fd480f793098475cf228f7428a7f66aed09ddeb88
GET /wp-content/uploads/2021/07/favicon.png HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Cookie: _ga_LSD99WEG1N=GS1.1.1665556108.1.0.1665556108.0.0.0; _ga=GA1.1.237446256.1665556108
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Jul 2021 10:59:57 GMT
accept-ranges: bytes
content-length: 526
content-type: image/png
date: Wed, 12 Oct 2022 06:28:29 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd963da4f-2224-4a6b-870c-5a00d4eeea55.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd963da4f-2224-4a6b-870c-5a00d4eeea55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 695b6d44466cc04c8a285331df94e54d
da11e5b4d9a5f744d41b868ab2b214d4eed5ae61
d4238fc77feff12cc6b2affe91b69cab59d54432d664b2bcd9fda46b229a46c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd963da4f-2224-4a6b-870c-5a00d4eeea55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6391
x-amzn-requestid: e102aa4b-a49b-410a-8e7d-a4b0c199527f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3B7fEIEoAMFi2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e37c-166ba51a39a11397074a990c;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:43:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Y-JbSRXBG5nlfp9MpbMu3PWRx1T9tppgUBsgA2kGGp3CsNbOvJiPIA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:32:48 GMT
age: 28545
etag: "da11e5b4d9a5f744d41b868ab2b214d4eed5ae61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/oma/imoladaumqi
143.95.229.28404 Not Found 0 B URL HTTP/2 www.locksmithofbrooklyn.com/oma/imoladaumqi
IP 143.95.229.28:0
Analyzer Verdict Alert fortinet Malware
GET /oma/imoladaumqi HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.locksmithofbrooklyn.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Wed, 12 Oct 2022 06:28:26 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
143.95.229.28200 OK 0 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 143.95.229.28:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 07:43:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
172.217.21.174200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 172.217.21.174:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Wed, 12 Oct 2022 06:28:29 GMT
date: Wed, 12 Oct 2022 06:28:29 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=YHKA2baROqM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=q1dz-qNGHLo; Domain=.youtube.com; Expires=Mon, 10-Apr-2023 06:28:29 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+019; expires=Fri, 11-Oct-2024 06:28:29 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/themes/Avada/style.css?ver=3.7.4
143.95.229.28200 OK 0 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/themes/Avada/style.css?ver=3.7.4
IP 143.95.229.28:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/Avada/style.css?ver=3.7.4 HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Oct 2022 08:55:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2
www.locksmithofbrooklyn.com/wp-content/cache/autoptimize/js/autoptimize_44c3fbe0e75f18136b945e5ea298715c.js
143.95.229.28200 OK 0 B URL HTTP/2 www.locksmithofbrooklyn.com/wp-content/cache/autoptimize/js/autoptimize_44c3fbe0e75f18136b945e5ea298715c.js
IP 143.95.229.28:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/autoptimize/js/autoptimize_44c3fbe0e75f18136b945e5ea298715c.js HTTP/1.1
Host: www.locksmithofbrooklyn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locksmithofbrooklyn.com/oma/imoladaumqi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 10 Oct 2022 04:02:13 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Mon, 02 Oct 2023 06:28:28 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Wed, 12 Oct 2022 06:28:28 GMT
server: Apache
X-Firefox-Spdy: h2